Privacy Policy

Your privacy matters. Here's exactly what ArbiTrack does and doesn't do with your data.

What we collect

ArbiTrack is designed to collect as little data as possible. Here's what we do collect:

• Contact form submissions — if you use our contact form, we receive your email address and message. This is processed by Formspree and stored only to respond to your inquiry.
• Payment transaction hashes — when you pay for access, we verify your blockchain transaction hash against Polygonscan. We do not store wallet addresses or financial details beyond what is needed for verification.
• Access tokens — a signed JWT token is stored in your browser's local storage to grant access. This token contains your tier and expiration time. No personal information is stored in the token.

What we don't collect

• We do not require an account, username, or password.
• We do not collect your name, phone number, or physical address.
• We do not use tracking cookies or third-party analytics.
• We do not sell, share, or transfer your data to third parties.
• We do not store your wallet address or crypto holdings.
• We do not serve ads or use ad-tracking pixels.

Blockchain payments

Payments are made directly on the Polygon blockchain using USDC or USDT. All transactions are public on the blockchain by nature. ArbiTrack verifies your transaction via Polygonscan's public API to confirm payment. We do not have access to your wallet, private keys, or funds.

Local storage

ArbiTrack stores a signed access token in your browser's local storage. This token is used solely to determine whether you have an active subscription. You can clear this data at any time by clearing your browser data or clicking "Sign out" in the scanner.

Third-party services

ArbiTrack uses the following third-party services:

• Vercel — hosting and serverless functions. Vercel Privacy Policy
• Formspree — contact form processing. Formspree Privacy Policy
• Polygonscan / Etherscan — payment verification via public blockchain data.
• Polymarket, Kalshi, PredictIt — public market data APIs for price information.

Data retention

Contact form submissions are retained only as long as needed to respond. Payment verification data (transaction hashes) is temporarily cached in server memory and not persisted to any database. Access tokens expire automatically based on the purchased tier (24 hours, 7 days, 30 days, or 365 days).

Your rights

You have the right to:

• Use ArbiTrack without providing any personal information (free tier).
• Request deletion of any data associated with your contact form submission.
• Clear your access token at any time via your browser settings or the "Sign out" button.

For any privacy-related questions, please use our contact form.

Changes to this policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date below. Continued use of ArbiTrack after changes constitutes acceptance of the updated policy.

Last updated: April 8, 2026